Re: SQL injection vulnerability in TCMS




: Vulnerability ID: HTB22576
: Reference: http://www.htbridge.ch/advisory/sql_injection_vulnerability_in_tcms_2.html

: Vulnerability ID: HTB22571
: Reference: http://www.htbridge.ch/advisory/sql_injection_vulnerability_in_tcms.html

Aside switching from GET to a POST request, what is the difference here?
That the injection point to reach the vulnerable script is /index.php this
time? You say the php/lib/admin.php script and 'id' variable are
vulnerable in each advisory.

Do you really need to issue two advisories for the same vulnerability, or
do you not understand the concept fully? Could you kids at lease put the
script name in the Subject of your Bugtraq posts if you continue to do
this one advisory/mail per script crap? While you may think it gives the
appearance of more work and more vulnerabilities, most people that have
been in security for a few months recognize it as an immature advisory
practice as compared to one consolidated advisory with all of the issues.

Bonus points if you reply to any of my previous mails asking questions
about your pedestrian disclosures.

Sincerely,

OSVDB.org



Relevant Pages

  • [NT] CitectSCADA ODBC Service Vulnerability
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Get your security news from a reliable source. ... are distributed in over 80 countries through a network of more than 500 ... A vulnerability was found in CitectSCADA that could allow a remote ...
    (Securiteam)
  • [Full-disclosure] Element CMS script insertion vulnerability
    ... TeamIntell Security Advisory TISA2007-06-Public ... Element CMS "s" parameter script insertion vulnerability ... Element CMS, a full featured Slovenian content management ...
    (Full-Disclosure)
  • Re: [Full-disclosure] Full-Disclosure Digest, Vol 79, Issue 21
    ... See MS advisory for full list of affected products. ... Seeker Research Center Security Advisory ... This vulnerability was discovered by Seeker? ... The request also contains other parameters required by the page, the vulnerable parameter being the parameter noted above. ...
    (Full-Disclosure)
  • [NT] Microsoft Word Malformed FIB Arbitrary Free Vulnerability (MS08-072)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... A vulnerability has been found in the way that Microsoft Word handles ... Vendor Information, Solutions and Workarounds: ... Core requests information concerning Microsoft's plans to fix ...
    (Securiteam)
  • [Full-disclosure] CORE-2014-0002 - Oracle VirtualBox 3D Acceleration Multiple Memory
    ... Core Security - Corelabs Advisory ... Oracle VirtualBox 3D Acceleration Multiple Memory Corruption Vulnerabilities ... *Vulnerability Information* ...
    (Full-Disclosure)